About me

TL;DR

Hi 👋, I’m Iuri Moro, a Penetration Tester and Ethical Hacker with a passion for learning and exploring new challenges. I specialize in conducting security assessments across various environments — web, mobile, network, Active Directory, and cloud. Constantly driven by curiosity, I’m always looking to expand my knowledge and share insights with others. This website is my way of doing just that — helping others improve their security while I continue to grow along the way.

Professional Background

Although my focus was always to come to this field, I first passed through some areas along the way… It all started back in Brazil (yep, I’m Brazilian), with web and mobile development. At the time, I was in High-School, and along the common subjects of the school my course also integrated a technology course focused on web development.

During that time I learned most of the fundamentals I use today, and had some great experiences working through scholarships with Arduino, developing Web Applications, then Mobile Applications, and even had the opportunity of participating in a Cybersecurity project. Although not so complex, it gave me the chance to create some simple labs and introduce important best practices to my city’s armed forces institutions (and of course, to confirm that this was the area I really wanted).

After that, I got my first official job as a Cybersecurity Analyst. I was thrilled, but although I had already studied a bunch on offensive security topics, I quickly noticed that I new nothing about the blue side of the spectrum 😅. My job was to help in configuring and implanting security equipments and softwares on the company’s clients (Firewalls, IDSs…). Here was the point I trully consolidated all my base knowledges on the area, specially over networking topics.

But still… I knew that was not what I wanted, so after some internal conversations, I had the opportunity to help creating and leading (alongside my boss) a new team in the company, responsible for organizing and delivering compliance projects to our clients, so they could adequate to LGPD (the brazilian version of GDPR).

This was a big challenge, as it was a new subject in general, and therefore I knew nothing about. But I did my best, qualified through some certifications, and through the learning curve we managed to create the foundational procedures and steps of a brand-new adequation framework to be used for all projects (This ended up becoming a software afterwards, but I’m not going there 😂).

Even working in another area, I never stopped studying ethical hacking, on the contrary, I did my first Ethical Hacking certification, and even my first Penetration Testing assessment! And theeen, after a few months, the long-waited opportunity to enter the dark side of the force finally came, and I started working officially as a Penetration Tester 🙌.

Approximately 6 months after starting at the new job, I was offered the opportunity to come live here in Portugal (where the company was located) and be closer to them, and I gladly accepted! It’s never thaat easy to move, specially as I didn’t know the country nor anyone that lived here apart from my work colleagues (that I had only met remotely), but I knew this was the right thing for me, and it was the best decision I could possibly take!

Now, my work is heavily focused on offensive security assessments, trying to find and report vulnerabilities on companies’ environments and applications, in order for them to be able to quickly fix it and prevent cyber attacks! And whenever I can, I go after some new fun things to study and test (lately I’ve being studying a bit more on Red Teaming, OppSec-friendly tools, working with Sliver and AD Attacks).

I love to learn, to teach, and to help, and this is the main reason I decided to start this website. I hope it is useful and that it helps some people along the way.